Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File: 5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier: +6qDzc7SJbo8UhUPv0E3hu7vhxN1jZaSfTYYWHoFHpM=
Subject key identifier: 5F:A5:DC:92:0C:81:4B:33:E2:28:E5:F4:B4:38:D1:34:DA:5B:64:51
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial: 019896A4B9B4D24CD2AD9A4ECD6ECDD62F1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number: 1629
Signing time: Mon 11 Aug 2025 01:00:34 +0000
Manifest this update: Mon 11 Aug 2025 01:00:34 +0000
Manifest next update: Tue 12 Aug 2025 01:00:34 +0000
Files and hashes: 1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: kvOjbvpooRV0L/vaS1QgvruEeM/GfPQKKVbMzdIB4qM=)
2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 01:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:96:a4:b9:b4:d2:4c:d2:ad:9a:4e:cd:6e:cd:d6:2f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Validity
Not Before: Aug 11 01:00:34 2025 GMT
Not After : Aug 12 01:00:34 2025 GMT
Subject: CN=5fa5dc920c814b33e228e5f4b438d134da5b6451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8d:06:79:fb:6f:ce:1f:67:b0:d9:57:3f:d5:
82:bd:10:50:6e:f0:e8:42:2b:cf:36:bc:d7:0d:d3:
15:3c:43:45:66:06:83:23:66:46:51:c7:19:51:f8:
f8:4a:6a:ed:e8:0b:ab:e0:70:3a:c1:7e:c5:89:8b:
b5:07:27:10:24:fb:1a:66:50:51:49:bd:1e:9e:62:
91:c8:47:8d:e3:3d:91:b5:c9:36:d9:25:a4:de:3e:
d2:9d:6b:bd:a0:f5:db:53:68:74:e1:88:9a:79:22:
e0:c4:71:dc:d9:f1:ed:6e:e2:ad:10:59:e3:73:d8:
83:6c:b2:4c:f7:75:e1:2d:55:1f:bb:17:59:32:ca:
74:87:e6:dd:1a:f2:d1:ba:35:a4:e4:a5:52:bd:51:
01:1f:12:49:73:48:dc:c5:ac:99:d9:e4:9a:9a:02:
bc:60:db:78:fb:44:15:5a:81:63:91:e0:a9:8a:c3:
10:08:30:0c:66:5a:c9:35:b5:eb:8d:77:ab:fc:16:
35:65:6e:e7:15:79:24:fa:60:ba:5a:f6:58:b5:b4:
19:76:9a:29:e7:ce:35:96:3f:77:4f:87:a1:1b:e9:
f7:1a:28:8b:e0:cc:8f:b5:24:ff:98:b8:c4:93:e6:
e3:21:ea:fa:16:df:4f:04:4c:c7:a8:1e:d2:30:8e:
64:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A5:DC:92:0C:81:4B:33:E2:28:E5:F4:B4:38:D1:34:DA:5B:64:51
X509v3 Authority Key Identifier:
keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:49:f3:f2:36:8f:5c:35:4a:ff:87:6c:80:06:4c:0d:91:ec:
c1:ad:a6:1b:80:d7:bc:78:67:b0:de:af:e0:84:82:8a:5d:d0:
04:3c:c5:85:24:a7:b1:4a:b2:b3:6c:e9:55:8a:11:31:13:e9:
65:83:be:ac:29:8a:35:de:7b:5d:7b:88:71:df:6a:6a:d3:d0:
c0:0e:91:27:68:32:ad:51:a3:1c:97:43:a8:4b:cb:c5:3d:26:
8d:56:96:97:25:9e:33:a9:cb:d2:1a:a0:97:b4:b4:50:60:23:
a2:40:b3:7c:1f:cf:c5:d7:27:52:4f:1d:2f:3e:28:30:91:c4:
c2:4e:6f:96:7b:2b:b1:cf:ad:b1:c1:4e:4b:c0:c2:80:5d:ab:
9d:c5:86:8e:fa:18:c6:ca:62:ad:a3:d1:fc:6f:d6:f2:c7:c3:
0e:8e:59:27:8e:89:a4:34:ba:1b:29:37:98:13:53:f7:96:7e:
fa:e9:b6:61:66:64:4e:fd:bf:c8:08:dd:13:0a:4e:1c:b9:e3:
4f:ce:1f:a8:b3:66:60:87:dc:1f:8c:94:8d:5e:61:5c:26:18:
d6:7e:f5:a6:e8:dc:1b:83:13:4c:c9:eb:69:31:a4:8c:6c:fe:
0a:f7:fa:b4:c6:b6:65:68:75:16:78:98:0a:4e:40:68:58:3d:
2d:e3:ec:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:31:04 2025 by rpki-client